Cross-site scripting (XSS) vulnerability in apps/zxtm/locallog.cgi in Riverbed Stingray (aka SteelApp) Traffic Manager Virtual Appliance 9.6 patchlevel 9620140312 allows remote attackers to inject arbitrary web script or HTML via the logfile parameter.
CPE | Name | Operator | Version |
---|---|---|---|
steelapp_traffic_manager | eq | 9.6 9620140312 |